Privacy Policy

• Workouts, plans, exercises, body measurements, AI Coach chat history
• All exercise logs, RPE inputs, achievements, and adaptation history
• Your appearance preference, weight unit, and other settings

• The above syncs across your ownApple devices via CloudKit's private database
• Your private iCloud data is end-to-end encrypted by Apple — neither Grüp nor anyone else can read it
• You can disable iCloud sync at any time in iOS Settings → Apple ID → iCloud

The following features use Apple's CloudKit public database, which makes records readable by other users:

• Activity Feed: when you tap “Share this workout with friends” on the finish screen, a summary (plan name, set count, total volume, top lifts, PR count, timestamp) is published. Friends can read and react to it.
• Live Sessions: while a Live Session is active, each set you log is published so other participants can see it in real time. Records are visible to anyone with the 6-character session code.
• Friend acceptance: when you accept a friend invite, a small record (your name, emoji, Apple ID) is published so the inviter's app can add you reciprocally.

Per-workout opt-in means we never share without your explicit toggle. Live Session data is only shared during an active session you've chosen to join.

• Apple Health writes (workouts, active calories) — only if you grant permission, only to your local Health app
• AI Coach + plan generation run entirely on-device via Apple Intelligence — your training data never leaves your phone for processing
• Push notifications— Apple delivers notifications about friend activity (reactions to your posts, new posts from friends, friend invites you've sent being accepted) through APNs; no third-party push service is involved

• We never sell or share your data with third parties
• We never run ads
• We never read your contacts, calendar, photos, or location
• We never collect analytics, telemetry, or crash data outside of what Apple provides
• We never see the contents of your private iCloud data — it's encrypted to us

If you sign in with Apple, your stable Apple user identifier is used as your handle on the public friend feed, Live Sessions, and friend invites. This is the same identifier across the app — no separate username. You can revoke this access anytime via iOS Settings → Apple ID → Sign in with Apple → Grüp.

• From this device: Profile → Coach → About → Delete my data wipes everything stored locally
• From your private iCloud: sign out of iCloud or delete the app from all your Apple devices
• From the public feed / live sessions: contact us at hello@gjo.dev and we'll remove any record we can identify

Grüp is not directed at children under 13. We don't knowingly collect data from anyone under 13.

We'll update this policy if anything material changes. The “Last updated” date above always reflects the most recent revision.

Questions about privacy: hello@gjo.dev